[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] OpenOffice.org issued a WMF code execution fix

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] OpenOffice.org issued a WMF code execution fix
From: Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx>
Date: Thu, 4 Jan 2007 13:27:24 +0200 (EET)

And the related OpenOffice Isue 70042 document opened on 2nd Oct is located at
http://www.openoffice.org/issues/show_bug.cgi?id=70042

These issues are fixed in version 2.1.

- Juha-Matti


Juha-Matti Laurio <juha-matti.laurio@xxxxxxxx> wrote: 
> It appears that OpenOffice.org has issued a patch for WMF/EMF heap overflow 
> vulnerability.
> 
> Both versions 1.1.x and 2.x are affected to this issue.
> According to Bugzilla entry code execution is possible.
> 
> More details via
> https://rhn.redhat.com/errata/RHSA-2007-0001.html
> 
> and
> http://blogs.securiteam.com/?p=785
> (including more references)
> 
> - Juha-Matti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: Re: [Full-disclosure] Google's blacklisted url database (phishing url database)
Next by Date: Re: [Full-disclosure] Universal XSS with PDF files: highly dangerous
Previous by thread: [Full-disclosure] OpenOffice.org issued a WMF code execution fix
Next by thread: [Full-disclosure] FULL DISCLOSURE: Duke Otterland
Index(es):
- Date
- Thread